Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/Wxia5IixPUGDlHZJj1aVAyGu3GM.roa
File: Wxia5IixPUGDlHZJj1aVAyGu3GM.roa (raw, json)
Hash identifier: 0DjzFoWgWGYqg47eescfIqAugZ5n2v21VHCZbM0QhBQ=
Subject key identifier: 5B:18:9A:E4:88:B1:3D:41:83:94:76:49:8F:56:95:03:21:AE:DC:63
Certificate issuer: /CN=65a665b90069bd71850602e7400c529793269e39
Certificate serial: 018F09F91016D8EE411CFE5E5D537D8CBF47
Authority key identifier: 65:A6:65:B9:00:69:BD:71:85:06:02:E7:40:0C:52:97:93:26:9E:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/Wxia5IixPUGDlHZJj1aVAyGu3GM.roa
Signing time: Tue 23 Apr 2024 08:01:08 +0000
ROA not before: Tue 23 Apr 2024 08:01:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215633
IP address blocks: 80.75.213.0/24 maxlen: 24
2a09:2b80:1::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.mft
rsync://rpki.ripe.net/repository/DEFAULT/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:09:f9:10:16:d8:ee:41:1c:fe:5e:5d:53:7d:8c:bf:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65a665b90069bd71850602e7400c529793269e39
Validity
Not Before: Apr 23 08:01:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b189ae488b13d41839476498f56950321aedc63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:19:ea:01:f6:4d:8f:a6:f3:3c:c6:dc:5e:77:
75:b9:96:9c:ae:24:56:89:2d:3f:f5:45:db:4c:85:
d8:c8:85:a6:b5:f4:70:5c:fa:42:f4:e7:25:dc:d1:
3b:e9:46:a3:af:ab:76:f9:fd:09:26:2e:14:95:dc:
9a:3a:d2:f6:92:87:c7:b1:59:c7:ea:98:8d:ef:cc:
92:8c:89:eb:98:8d:9d:a7:bd:b8:4d:f9:96:8f:d9:
5a:53:1b:ff:90:af:03:e4:34:ce:b3:72:42:2b:2d:
b5:3e:fb:fe:6e:92:19:45:33:a7:9b:6c:d8:04:85:
f0:b0:68:3b:fa:0b:d4:b8:2b:d1:8c:f9:90:51:64:
1d:94:fe:cb:ea:6c:a7:4f:20:0f:0b:3d:14:49:7f:
9f:75:2e:8f:23:01:1c:be:37:c6:22:20:ce:9b:e5:
e4:31:8a:a9:3c:3c:c9:d5:7e:e9:01:0d:fe:f8:ce:
41:d9:81:da:dc:18:cf:d9:f6:18:44:c8:a3:fb:c4:
07:c7:73:52:c2:5c:7b:f7:95:fa:de:a4:13:7e:c8:
c0:7a:6e:e0:ee:a7:bd:34:6d:9f:14:4e:79:a3:df:
a7:c8:ee:0e:9c:ab:e5:c4:16:42:d2:97:fb:4d:86:
b9:89:2d:9c:a6:cd:2c:d0:00:13:fb:15:da:3b:bf:
d3:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:18:9A:E4:88:B1:3D:41:83:94:76:49:8F:56:95:03:21:AE:DC:63
X509v3 Authority Key Identifier:
keyid:65:A6:65:B9:00:69:BD:71:85:06:02:E7:40:0C:52:97:93:26:9E:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/Wxia5IixPUGDlHZJj1aVAyGu3GM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.213.0/24
IPv6:
2a09:2b80:1::/48
Signature Algorithm: sha256WithRSAEncryption
39:8c:ac:bc:e0:45:0f:f5:91:0f:8f:66:13:74:0f:05:65:9e:
c1:03:d8:31:1e:31:a4:08:25:92:e9:81:9b:2c:6e:51:e0:64:
12:ac:15:08:78:61:78:51:7f:cd:06:bc:31:c0:09:05:07:85:
06:da:77:45:86:89:6d:40:ec:1f:ed:7b:24:b1:bf:9f:91:9c:
c2:0f:d8:6b:b9:f8:db:c5:45:b0:dc:ed:8e:fc:85:d7:fb:c4:
5c:1f:5f:9a:27:77:71:52:df:56:96:a9:43:d5:25:b0:22:74:
52:33:9f:25:46:c9:ba:0b:f0:1d:0b:98:7b:6a:91:eb:ee:8c:
3c:22:69:8e:f7:d8:2a:19:7e:8f:eb:9f:12:b6:c6:41:4f:cc:
15:c9:f0:81:01:af:08:ef:06:df:34:dc:26:fd:0d:be:03:90:
6b:7f:07:8f:c1:e6:25:c1:11:58:be:bd:6b:af:57:a3:7f:73:
8d:61:d2:de:48:b9:fd:c8:97:5b:aa:7a:96:d1:01:57:e9:84:
66:53:eb:b7:2e:27:d4:7b:a4:12:78:1e:ae:62:cb:d5:46:83:
fb:bb:d3:a6:c4:62:c6:cc:1c:26:e3:4c:bd:e0:87:44:f1:1a:
a5:d3:76:ce:c7:68:63:b1:dd:14:bf:8d:2b:2a:e4:b0:86:07:
1e:41:f6:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 05:15:17 2024 by rpki-client on console-fra.rpki-client.org